Jump to content

Return to Piriform.com

Photo

Possible suspicious update labeled as Adobe Flash Player


  • Please log in to reply
13 replies to this topic

#1 OFFLINE razz

razz

    Power Member

  • Members
  • PipPipPipPip
  • 580 posts
  • Gender:Male
  • Location:Ontario, Canada
  • Interests:Poker, other card games, chess and fidling with my computer.

Posted 23 August 2012 - 05:34 PM

Today I had a notice to update Adobe Flash Player. As I proceeded, a pop-up from my anti-virus program (Comodo) warned me about a trojan. Not sure what the pop-up read exactly because it disappeared before I could really look at it, but I did notice the word trojan. I noticed the update was downloaded from "get3.adobe.com". This is suspicious because as far as I know the usual updates come from "get.adobe.com". I immediately uninstalled the program and re-installed from get.adobe.com.

I ran virus scans and nothing was detected.

I just wanted to warn you guys & gals that there may be a suspicious update.

#2 OFFLINE Andavari

Andavari

    .

  • Moderators
  • 16,652 posts
  • Gender:Male
  • Location:U.S.A.

Posted 23 August 2012 - 06:23 PM

If it came from Adobe.com then you would've had the legit version.

Albeit the new updated version re-introduces an old bug they supposedly fixed months ago where the video is split in two halves with a horizontal green line separating the video. I'm sticking with the previous vulnerable version until they fix it, as this new version is useless to me.

Piriform software help documentation.

CCleaner is NOT a malware removal tool.

Don't PM me for advice or help! I'll only ask you to read forum rule #15.


#3 ONLINE hazelnut

hazelnut

    try to stay calm

  • Moderators
  • 12,930 posts
  • Gender:Female
  • Location:Huddersfield uk

Posted 24 August 2012 - 12:22 AM

It's good that you check your downloads so closely razz.

This link goes to show how users can be tricked by Flash (even though it's Android)

http://majorgeeks.co...ry.php?id=35605
CCLEANER, RECUVA, DEFRAGGLER AND SPECCY DOCUMENTATION CAN BE FOUND HERE

http://www.piriform.com/docs

#4 OFFLINE Warlock

Warlock

    Advanced Member

  • Members
  • PipPipPip
  • 206 posts
  • Gender:Male
  • Location:Lost In Space
  • Interests:Hope to make many friends and hopefully get some much needed help including forum participation. Computer illiteracy knows no boundaries as not had time to learn.

Posted 24 August 2012 - 09:12 AM

Hello All,

I hadn't been on in a while and noticed this post. Ironically yesterday I received an Adobe notice to update Flash. Being totally ignorant with these damn computers and Adobe in particular that is so difficult to update I just backed out of it and decided to let my good friend help me with it as we can hook up remotely.

I ran all of my scans and nothing that would cause heartburn appeared. Would you good folks suggest that I just let sleeping dogs lie and just keep an eye peeled for any invasion?

Take care and have a good one.

Warlock
If I can stop one heart from breaking, I shall not live in vain. If I can ease one life the aching or cool one pain, or help one fainting robin unto his nest again, I shall not live in vain. (Emily Dickinson-1830-1886)

#5 OFFLINE Nergal

Nergal

    Volunteer CCleaner Demon/Post Meddler

  • Moderators
  • 6,378 posts
  • Gender:Male
  • Location:Get off my Lawn, y'darn kids!
  • Interests:being grumpier
    Laughing
    Crying
    Sleep comes Later though.

Posted 24 August 2012 - 09:43 PM

yes I also got get3 on the update today, checks out ok esp since it's a subdomain of adobe dot com
ADVICE FOR USING CCleaner'S REGISTRY INTEGRITY SECTION
DON'T JUST CLEAN EVERYTHING THAT'S CHECKED OFF.
Do your Registry Cleaning in small bits (at the very least Check-mark by Check-mark)
ALWAYS BACKUP THE ENTRY, YOU NEVER KNOW WHAT YOU'LL BREAK IF YOU DON'T.
CCLEANER, RECUVA, DEFRAGGLER AND SPECCY DOCUMENTATION CAN BE FOUND AT www.piriform.com/docs
Link to Winapp2.ini explanation

#6 OFFLINE TheWebAtom

TheWebAtom

    Power Member

  • Members
  • PipPipPipPip
  • 571 posts
  • Gender:Male
  • Location:Australia
  • Interests:I'm a software developer, website maker and blog writer.

Posted 25 August 2012 - 04:17 AM

Adobe uses wildcard subdomains; allowing them to generate multiple subdomains all pointing to the same content. This is primarily done for analytic or load balancing reasons. I've personally used wildcards to circumvent poorly designed web content filters, back in high school.

tl;dr: If it's pointing to *.adobe.com, it's safe.
I'm Shane.

#7 OFFLINE Alan_B

Alan_B

    Super Hero

  • Members
  • PipPipPipPipPip
  • 4,276 posts
  • Gender:Male
  • Location:Lancashire, England

Posted 25 August 2012 - 09:08 AM

tl;dr: If it's pointing to *.adobe.com, it's safe.

In my view, if it comes from adobe.com :-
Intent - probably non-malicous
safety - only when vulnerabilities are removed - not in our life time :o

#8 OFFLINE Icedrake

Icedrake

    Shazam!

  • Members
  • PipPipPipPip
  • 1,705 posts
  • Gender:Male
  • Location:Massachusetts

Posted 25 August 2012 - 01:23 PM

In my view, if it comes from adobe.com :-
Intent - probably non-malicous
safety - only when vulnerabilities are removed - not in our life time :o

HTML5, y u no more popular?

#9 OFFLINE DennisD

DennisD

    Member

  • Moderators
  • 10,050 posts
  • Gender:Male
  • Location:England: NE Coast

Posted 25 August 2012 - 04:20 PM

I never auto update, and always get my Adobe from File Hippo, and install off-line.

http://filehippo.com...h?q=adobe flash

All good so far, including the latest version.

#10 OFFLINE Winapp2.ini

Winapp2.ini

    Friendly neighborhood addon manager

  • Beta Testers
  • PipPipPipPipPip
  • 5,927 posts
  • Gender:Male
  • Location:Long Island, New York
  • Interests:Sleeping

Posted 25 August 2012 - 05:17 PM

I tend to agree with alan here. :lol:

#11 OFFLINE TheWebAtom

TheWebAtom

    Power Member

  • Members
  • PipPipPipPip
  • 571 posts
  • Gender:Male
  • Location:Australia
  • Interests:I'm a software developer, website maker and blog writer.

Posted 26 August 2012 - 07:47 AM

Good point Alan. In that case; replace "safe" with "unintentionally harmful"

Side note: HTML5 isn't more popular because it sucks. Browser vendors can't decide on spec standards, fallbacks for legacy browsers are inconsistent and it's just painfully complex to do anything non-primitive. That said; HTML5 will eventually dominate because it still sucks less than Flash.
I'm Shane.

#12 OFFLINE Andavari

Andavari

    .

  • Moderators
  • 16,652 posts
  • Gender:Male
  • Location:U.S.A.

Posted 27 August 2012 - 04:43 PM

If it's pointing to *.adobe.com, it's safe.


That's what I was trying to point out in the second post of this topic in my very first sentence.

With every Flash Player update I'm always wondering what they've broken in their neverending quest to remove vulnerabilities.

Is it me or did Adobe's acquistion of Flash ruin it?

Piriform software help documentation.

CCleaner is NOT a malware removal tool.

Don't PM me for advice or help! I'll only ask you to read forum rule #15.


#13 OFFLINE razz

razz

    Power Member

  • Members
  • PipPipPipPip
  • 580 posts
  • Gender:Male
  • Location:Ontario, Canada
  • Interests:Poker, other card games, chess and fidling with my computer.

Posted 30 August 2012 - 06:07 PM

Is it me or did Adobe's acquistion of Flash ruin it?


I agree with you Andavari.

#14 OFFLINE Corona

Corona

    Super Hero

  • Members
  • PipPipPipPipPip
  • 2,337 posts
  • Gender:Male
  • Location:US

Posted 30 August 2012 - 08:06 PM

I remember when Adobe ate up Metacreations.